Linux » Man Pages
find in page
/usr/sbin/slapd [-f slapd-config-file] [-h URLs] [-d debug-level] [-n
service-name] [-s syslog-level] [-l syslog-local-user] [-r directory]
[-u user] [-g group]
Slapd is the stand-alone LDAP daemon. It listens for LDAP connections
on any number of ports (default 389), responding to the LDAP operations
it receives over these connections. slapd is typically invoked at boot
time, usually out of /etc/rc.local. Upon startup, slapd normally forks
and disassociates itself from the invoking tty. If configured in
/etc/openldap/slapd.conf, the slapd process will print its process ID (
see getpid(2) ) to a .pid file, as well as the command line options
during invocation to an .args file ( see slapd.conf(5) ). If the -d
flag is given, even with a zero argument, slapd will not fork and dis-
associate from the invoking tty.
Slapd can be configured to provide replicated service for a database
with the help of slurpd, the standalone LDAP update replication daemon.
See slurpd(8) for details.
See the "OpenLDAP Administrator’s Guide" for more details on slapd.
Turn on debugging as defined by debug-level. If this option is
specified, even with a zero argument, slapd will not fork or
disassociate from the invoking terminal. Some general operation
and status messages are printed for any value of debug-level.
debug-level is taken as a bit string, with each bit correspond-
ing to a different kind of debugging information. See <ldap.h>
This option tells slapd at what level debugging statements
should be logged to the syslog(8) facility.
Specifies the service name for logging and other purposes.
Defaults to basename of argv, i.e.: "slapd".
Selects the local user of the syslog(8) facility. Values can be
LOCAL0, LOCAL1, and so on, up to LOCAL7. The default is LOCAL4.
However, this option is only permitted on systems that support
local users with the syslog(8) facility.
Specifies the slapd configuration file. The default is
slapd will serve ldap:/// (LDAP over TCP on all interfaces on
default LDAP port). That is, it will bind to using INADDR_ANY
and port 389. The -h option may be used to specify LDAP (and
LDAPS) URLs to serve. For example, if slapd is given -h
ldaps:// port is 636.
Specifies a chroot "jail" directory. slapd will chdir(2) then
chroot(2) to this directory after opening listeners but before
any reading any configuration file or initializing any backend.
slapd will run slapd with the specified user name or id, and
that user’s supplementary group access list as set with init-
groups(3). The group ID is also changed to this user’s gid,
unless the -g option is used to override.
slapd will run with the specified group name or id.
Note that on some systems, running as a non-privileged user will pre-
vent passwd back-ends from accessing the encrypted passwords. Note
also that any shell back-ends will run as the specified non-privileged
To start slapd and have it fork and detach from the terminal and start
serving the LDAP databases defined in the default config file, just
To start slapd with an alternate configuration file, and turn on volu-
minous debugging which will be printed on standard error, type:
/usr/sbin/slapd -f /etc/openldap/slapd.conf -d 255
ldap(3), slapd.conf(5), slurpd(8)
"OpenLDAP Administrator’s Guide" (http://www.OpenLDAP.org/doc/admin/)
OpenLDAP is developed and maintained by The OpenLDAP Project
(http://www.openldap.org/). OpenLDAP is derived from University of
Michigan LDAP 3.3 Release.
OpenLDAP 2.0.27-Release 5 Novemeber 2000 SLAPD(8C)
Output converted with
what's new |